Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-0582 PoC — Linux kernel 安全漏洞

Source
https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582
Associated Vulnerability
Title:Linux kernel 安全漏洞 (CVE-2024-0582)
Description:Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于存在内存泄漏问题,允许本地用户导致崩溃或提升权限。
Description
LPE exploit for CVE-2024-0582 (io_uring)
Readme
# io_uring_LPE-CVE-2024-0582
LPE exploit for CVE-2024-0582.

I will not be releasing a write-up for this vulnerability as my method of exploitation is almost the same as for [CVE-2023-2598](https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598).

You can read the exploitation section of my write-up on CVE-2023-2598 to understand this exploit as well: [Conquering the memory through io_uring - Analysis of CVE-2023-2598](https://anatomic.rip/cve-2023-2598/).

If you want to read more about the vulnerability itself, Oriol Castejón ([@foolisses](https://twitter.com/foolisses)) has written an excellent post on it: [Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu](https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/)

## Disclaimer
For educational and research purposes only. Use at your own risk.
File Snapshot

 [4.0K]  /data/pocs/42d1e820c0f2f4f6986837b6ad65d217853a56b4
├── [ 10K]  exploit.c
└── [ 878]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.