Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-11176 PoC — Linux kernel 安全漏洞

Source
https://github.com/leonardo1101/cve-2017-11176
Associated Vulnerability
Title:Linux kernel 安全漏洞 (CVE-2017-11176)
Description:Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。 Linux kernel 4.11.9及之前的版本中的‘mq_notify’函数存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(释放后重用)。
Readme
# cve-2017-11176
<h3> Public Information </h3>
<p>The mq_notify function in the Linux kernel through 4.11.9 does not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlink socket, it allows attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact.</p>

<b>Status:</b>
- [x] Force netlink_attachskb() to return 1
- [x] Unblock the exploit thread
- [x] Force the second fget() call to return NULL
- [ ] Create the exploit

<b>Reference:</b>
[A step-by-step Linux Kernel exploitation](https://blog.lexfo.fr/cve-2017-11176-linux-kernel-exploitation-part1.html)
File Snapshot

 [4.0K]  /data/pocs/31f088b6a31403c4706a920120e115b8a36e82b5
├── [7.6K]  exploit.c
├── [3.2K]  mqnotify.stp
└── [ 644]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.