Skip to content

My proof-of-concept exploits for the Linux kernel

Notifications You must be signed in to change notification settings

xairy/kernel-exploits

Repository files navigation

Linux kernel exploits

Date Link Description Vector Impact
02.2016 CVE-2016-2384 Double-free in USB MIDI driver Physical + Local LPE
03.2016 prefetch-side-channel KASLR bypass via prefetch Local Info-leak
12.2016 CVE-2016-9793 Signedness issue with socket buffers Local + cap_net_admin LPE
02.2017 CVE-2017-6074 Double-free in DCCP sockets Local LPE
03.2017 CVE-2017-7308 Signedness issue in AF_PACKET sockets Local LPE
08.2017 CVE-2017-1000112 Memory corruption in UDP FO packets Local LPE
08.2018 CVE-2017-18344 Arbitrary-read in the timer subsystem Local Info-leak

No license

The code in this repository comes with no attached license.

THE SOFTWARE [and this disclaimer] IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

Releases

No releases published

Packages

No packages published