CVE-2022-27666 PoC — Linux kernel 缓冲区错误漏洞

Source

https://github.com/Albocoder/cve-2022-27666-exploits

Associated Vulnerability

Title:Linux kernel 缓冲区错误漏洞 (CVE-2022-27666)
Description:Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 5.16.15之前版本存在安全漏洞，该漏洞源于net/ipv4/esp4.c 和 net/ipv6/esp6.c 中IPsec ESP 代码存在缓冲区溢出。本地攻击者可利用该漏洞通过覆盖内核堆对象获得特权。

Description

There are 2 exploitation methods that exploit CVE-2022-27666. For more info on how to use these code bases please check my blog.

Readme

# cve-2022-27666-exploits
There are 2 exploitation methods that exploit CVE-2022-27666. For more info on how to use these code bases please check my blog [here](https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html).

File Snapshot


 [4.0K]  /data/pocs/d8dabd5d3b894428d8398c9a8aa4c9277c0700f0
├── [ 233]  README.md
├── [4.0K]  struct file method
│   ├── [2.1K]  fuse_evil.c
│   ├── [ 889]  fuse_evil.h
│   └── [ 79K]  poc.c
└── [4.0K]  struct vm_area_struct method
    ├── [2.1K]  fuse_evil.c
    ├── [ 889]  fuse_evil.h
    └── [ 73K]  poc.c

2 directories, 7 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!