CVE-2022-25636 PoC — Linux kernel 安全漏洞

Source

https://github.com/Bonfee/CVE-2022-25636

Associated Vulnerability

Title:Linux kernel 安全漏洞 (CVE-2022-25636)
Description:Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于堆越界写入问题。攻击者可利用该漏洞访问越界内存，从而导致系统崩溃或权限升级威胁。

Description

CVE-2022-25636

Readme

# CVE-2022-25636
This is my exploit for `CVE-2022-25636`.  
I tested it against Ubuntu 21.10 with kernel `5.13.0-30`.  
Works about `~40%` of the time, in the other cases you likely get a kernel panic.  
The exploit might corrupt important data on heap, after an unsuccessful attempt it's best to reboot.  

![](./poc.png)

File Snapshot


 [4.0K]  /data/pocs/b72851060798b12699e4cc358f39d802c6e7ca9f
├── [ 18K]  exploit.c
├── [1.1K]  fakefuse.c
├── [ 562]  fakefuse.h
├── [ 208]  Makefile
├── [376K]  poc.png
├── [ 323]  README.md
├── [ 643]  util.c
└── [ 656]  util.h

0 directories, 8 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!