CVE-2020-14386 PoC — Linux kernel 缓冲区错误漏洞

Source

https://github.com/cgwalters/cve-2020-14386

Associated Vulnerability

Title:Linux kernel 缓冲区错误漏洞 (CVE-2020-14386)
Description:A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.

Readme

# Reproducer for CVE-2020-14386

Pre-built container: `registry.svc.ci.openshift.org/coreos/cve-2020-14386`

You probably want to test against an explicit node, like this:

```
apiVersion: v1
kind: Pod
metadata:
  name: cve-2020-14386
spec:
  restartPolicy: Never
  nodeName: <yournode>
  containers:
  - name: cve-2020-14386
    image: registry.svc.ci.openshift.org/coreos/cve-2020-14386
    imagePullPolicy: Always
```

Replace `yournode` with a particular node you want to validate, then
`kubectl create -f pod.yaml` from the content above.
If your kernel is vulnerable, the node may crash or reboot; use e.g.
`kubectl get node/<nodename>` and check if the node goes `NotReady`
and reboots.

If the node is not vulnerable, then `kubectl logs pod/cve-2020-14386`
will show something like:
```
Running reproducer for CVE-2020-14386 in 5s - this may crash the node
Reproducer exited successfully - node probably not vulnerable
```

File Snapshot


 [4.0K]  /data/pocs/86cdecce477ffda2bed85c84df75676bc45d539c
├── [ 823]  50-reset-crio-capabilities.conf
├── [3.9K]  cve-cap-net-raw.c
├── [ 514]  Dockerfile
├── [ 931]  README.md
└── [ 286]  wrapper.sh

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!