CVE-2021-33909 PoC — Linux kernel 输入验证错误漏洞

Source

https://github.com/baerwolf/cve-2021-33909

Associated Vulnerability

Title:Linux kernel 输入验证错误漏洞 (CVE-2021-33909)
Description:Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 存在输入验证错误漏洞，该漏洞源于一个越界写入缺陷。

Description

This module fixes an issue in the kernels filesystem layer (CVE-2021-33909) by kprobe-replacing vulnerable functions during runtime

Readme

Kernel runtime fix of CVE-2021-33909
====================================

This repository builds an out-of-tree module named "cve-2021-33909.ko".
cve-2021-33909 fixes an issue in the kernels filesystem layer by kprobe-replacing vulnerable functions during runtime.

It can be build via "make", setting KDIR to the kernels (source-/header-)directory.

It can be loaded directly via "insmod cve-2021-33909.ko",
or copied (+depmod) into the kernels module directory (extra/) and then modprobed with "modprobe cve-2021-33909".

by Stephan Baerwolf, Erfurt 2021

File Snapshot


 [4.0K]  /data/pocs/2f600699eb6760c14eb9701cefa77bdc2155017d
├── [3.9K]  cve-2021-33909_core.c
├── [5.9K]  cve-2021-33909_seq_file.c
├── [ 270]  Makefile
└── [ 558]  README.md

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!