4.4 KiB
4.4 KiB
CVE-2010-4258
Description
The do_exit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly handle a KERNEL_DS get_fs value, which allows local users to bypass intended access_ok restrictions, overwrite arbitrary kernel memory locations, and gain privileges by leveraging a (1) BUG, (2) NULL pointer dereference, or (3) page fault, as demonstrated by vectors involving the clear_child_tid feature and the splice system call.
POC
Reference
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=33dd94ae1ccbfb7bf0fb6c692bc3d1c4269e6177
- https://lkml.org/lkml/2010/12/1/543
Github
- https://github.com/0xTo/linux-kernel-exploits
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Al1ex/LinuxEelvation
- https://github.com/C0dak/linux-kernel-exploits
- https://github.com/C0dak/local-root-exploit-
- https://github.com/CYBER-PUBLIC-SCHOOL/linux-privilege-escalation-cheatsheet
- https://github.com/De4dCr0w/Linux-kernel-EoP-exp
- https://github.com/Feng4/linux-kernel-exploits
- https://github.com/HUSTSeclab/Kernel-Exploits
- https://github.com/HaxorSecInfec/autoroot.sh
- https://github.com/JlSakuya/Linux-Privilege-Escalation-Exploits
- https://github.com/Micr067/linux-kernel-exploits
- https://github.com/QChiLan/linux-exp
- https://github.com/R0B1NL1N/Linux-Kernal-Exploits-m-
- https://github.com/R0B1NL1N/Linux-Kernel-Exploites
- https://github.com/R0B1NL1N/linux-kernel-exploitation
- https://github.com/SecWiki/linux-kernel-exploits
- https://github.com/Shadowshusky/linux-kernel-exploits
- https://github.com/Singlea-lyh/linux-kernel-exploits
- https://github.com/Snoopy-Sec/Localroot-ALL-CVE
- https://github.com/Technoashofficial/kernel-exploitation-linux
- https://github.com/ZTK-009/linux-kernel-exploits
- https://github.com/a-roshbaik/Linux-Privilege-Escalation-Exploits
- https://github.com/albinjoshy03/linux-kernel-exploits
- https://github.com/alian87/linux-kernel-exploits
- https://github.com/coffee727/linux-exp
- https://github.com/cookiengineer/goroot
- https://github.com/cookiengineer/groot
- https://github.com/copperfieldd/linux-kernel-exploits
- https://github.com/distance-vector/linux-kernel-exploits
- https://github.com/fei9747/LinuxEelvation
- https://github.com/geeksniper/Linux-privilege-escalation
- https://github.com/h4x0r-dz/local-root-exploit-
- https://github.com/hktalent/bug-bounty
- https://github.com/karottc/linux-virus
- https://github.com/kdn111/linux-kernel-exploitation
- https://github.com/khanhdn111/linux-kernel-exploitation
- https://github.com/khanhdz-06/linux-kernel-exploitation
- https://github.com/khanhdz191/linux-kernel-exploitation
- https://github.com/khanhhdz/linux-kernel-exploitation
- https://github.com/khanhhdz06/linux-kernel-exploitation
- https://github.com/khanhnd123/linux-kernel-exploitation
- https://github.com/khnhdz/linux-kernel-exploitation
- https://github.com/knd06/linux-kernel-exploitation
- https://github.com/kumardineshwar/linux-kernel-exploits
- https://github.com/m0mkris/linux-kernel-exploits
- https://github.com/ndk06/linux-kernel-exploitation
- https://github.com/ndk191/linux-kernel-exploitation
- https://github.com/nisadevi11/Localroot-ALL-CVE
- https://github.com/ozkanbilge/Linux-Kernel-Exploits
- https://github.com/p00h00/linux-exploits
- https://github.com/password520/linux-kernel-exploits
- https://github.com/qiantu88/Linux--exp
- https://github.com/rakjong/LinuxElevation
- https://github.com/skbasava/Linux-Kernel-exploit
- https://github.com/sonu7519/linux-priv-Esc
- https://github.com/ssr-111/linux-kernel-exploitation
- https://github.com/tranquac/Linux-Privilege-Escalation
- https://github.com/usamaelshazly/Linux-Privilege-Escalation
- https://github.com/vlain1337/auto-lpe
- https://github.com/wkhnh06/linux-kernel-exploitation
- https://github.com/xFinu/linux-kernel-exploits
- https://github.com/xairy/linux-kernel-exploitation
- https://github.com/xcode96/REDME
- https://github.com/xfinest/linux-kernel-exploits
- https://github.com/xssfile/linux-kernel-exploits
- https://github.com/yige666/linux-kernel-exploits
- https://github.com/zyjsuper/linux-kernel-exploits