CVE-2023-0386 PoC — Linux kernel 安全漏洞

Source

https://github.com/sxlmnwb/CVE-2023-0386

Associated Vulnerability

Title:Linux kernel 安全漏洞 (CVE-2023-0386)
Description:Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于在 Linux kernel的 OverlayFS 子系统中发现了未经授权访问，用户可以将一个有执行能力的文件从一个 nosuid 挂载复制到另一个挂载，这个 uid 映射错误允许用户升级他们在系统上的权限。

Description

Vulnerabilities Exploitation On Ubuntu 22.04

Readme

# Installation
```bash
make all
```
# How to use
Start two terminals and in the first one type
```bash
./fuse ./ovlcap/lower ./gc
```
In the second terminal type
```bash
./exp
```

File Snapshot


 [4.0K]  /data/pocs/8317eba3d299ca871d1f8c3d01409ff32a134b3d
├── [3.0K]  exp.c
├── [5.5K]  fuse.c
├── [ 549]  getshell.c
├── [ 150]  Makefile
├── [4.0K]  ovlcap
├── [ 180]  README.md
└── [4.0K]  test
    ├── [ 10K]  fuse_test.c
    ├── [ 16K]  mnt
    └── [1.5K]  mnt.c

2 directories, 8 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!