Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-4154 PoC — Linux kernel 资源管理错误漏洞

Source
https://github.com/Markakd/CVE-2021-4154
Associated Vulnerability
Title:Linux kernel 资源管理错误漏洞 (CVE-2021-4154)
Description:A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service on the system.
Description
CVE-2021-4154 exploit
Readme
# CVE-2021-4154

This bug was fix in https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3b0462726e7ef281c35a7a4ae33e93ee2bc9975b

This exploit works on most pre-patch kernels for:

* CentOS 8 kernels higher than linux-4.18.0-305.el8
* Debian 11 kernels higher than 5.10.0-8
* Fedora 31/32/33 kernels higher than 5.3.7-301.fc31
* Ubuntu 18/20 kernels higher than 5.4.0-84 and 5.11.0-37.41

Please feel free to send a PR to update README if you find it could work on other kernels.
File Snapshot

 [4.0K]  /data/pocs/b1533ae2310cccaff945f9984a41dbe1125773a2
├── [7.2K]  exp.c
├── [ 18K]  kctf_exp.c
├── [ 507]  README.md
└── [ 15K]  WRITEUP.md

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →