CVE-2022-0847 PoC — Linux kernel 安全漏洞

Source

https://github.com/ih3na/debian11-dirty_pipe-patcher

Associated Vulnerability

Title:Linux kernel 安全漏洞 (CVE-2022-0847)
Description:A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.

Description

A Simple bash script that patches the CVE-2022-0847 (dirty pipe) kernel vulnerability on Debian 11

Readme

# debian11-dirty_pipe-patcher

*This Project is still under development*

Since the Debian 11 still comes with the kernel version 5.10, which is vulnerable to the Dirty Pipe Vulnerability,
this scirpt is made for manually compile and install the kernel version 5.18 which is not vulnerable.

## Usage
1. Clone the repository
2. Run the bash script with sudo permissons 
3. Reboot the system

## Notes
- Do not do configurations in the first make config
- Clear the cryptograpic key locations in the oldconfig
- Make the proper Kernel Hacks and Drivere configurations in the make config screen

## Special Credits
- https://youtu.be/gfqeyxP4wWY

File Snapshot


 [4.0K]  /data/pocs/3b9f4451cdfa95f165727e584cf346cc4e5cf7b6
├── [ 16K]  LICENSE
├── [ 644]  README.md
└── [1.0K]  script.sh

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!