Can this BUG be used in this project?SOCK_RAW sockets reachable from Webkit process allows triggering double free in IP6_EXTHDR_CHECK

Question

Can this BUG be used in this project?SOCK_RAW sockets reachable from Webkit process allows triggering double free in IP6_EXTHDR_CHECK

TomYule opened this issue 4 years ago · 3 comments

Can this BUG be used in this project?
Maybe 7.55 can use this BUG
https://hackerone.com/reports/943231
https://hackerone.com/theflow0?type=user

Answer 1 · 2021-01-13T08:28:51.000Z

You're not the first to ping me with it. Investigating right now.

Answer 2 · 2021-01-13T09:52:50.000Z

Sorry, I'd like to make some contribution to this project, but I don't know how to start;
I am a Java developer, my ps4 system 7.55 I use MacOS development; I see your project is using HTML to call Python and c.
How do I build this project?
CLion? WebStorm?
Just HTML running up ps4 browser access to what address?

Answer 3 · 2021-01-13T10:05:48.000Z

The repository does contain a pre-built copy of the exploit and some payloads, but if you make any changes to the sources you'd need to recompile it. There is a Makefile in src/ for doing that, but you'll need a PS4 on 6.72/7.02, depending on what firmware you are building for.