Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2022-25636 PoC — Linux kernel 安全漏洞

Source
https://github.com/Bonfee/CVE-2022-25636
Associated Vulnerability
Title:Linux kernel 安全漏洞 (CVE-2022-25636)
Description:net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-of-bounds write. This is related to nf_tables_offload.
Description
CVE-2022-25636
Readme
# CVE-2022-25636
This is my exploit for `CVE-2022-25636`.  
I tested it against Ubuntu 21.10 with kernel `5.13.0-30`.  
Works about `~40%` of the time, in the other cases you likely get a kernel panic.  
The exploit might corrupt important data on heap, after an unsuccessful attempt it's best to reboot.  

![](./poc.png)
File Snapshot

 [4.0K]  /data/pocs/b72851060798b12699e4cc358f39d802c6e7ca9f
├── [ 18K]  exploit.c
├── [1.1K]  fakefuse.c
├── [ 562]  fakefuse.h
├── [ 208]  Makefile
├── [376K]  poc.png
├── [ 323]  README.md
├── [ 643]  util.c
└── [ 656]  util.h

0 directories, 8 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →