CVE-2017-16995 PoC — Linux kernel 安全漏洞

Source

https://github.com/ph4ntonn/CVE-2017-16995

Associated Vulnerability

Title:Linux kernel 安全漏洞 (CVE-2017-16995)
Description:The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.

Description

👻CVE-2017-16995

Readme

# CVE-2017-16995

记录一下自己折腾的CVE-2017-16995漏洞和相关分析

（希望能自己找个，笑

## 概述

此漏洞由于bpf虚拟执行时，校验器分支判断错误所引起的LPE

原理上是整数扩展漏洞

## 分析

触发	https://ph4ntonn.github.io/CVE-2017-16995-trigger.html

利用	https://ph4ntonn.github.io/CVE-2017-16995-exploit.html

结构	https://ph4ntonn.github.io/CVE-2017-16995-structure.html

## EXP

此处[下载](https://raw.githubusercontent.com/ph4ntonn/CVE-2017-16995/master/exp.c)，请自行编译

File Snapshot


 [4.0K]  /data/pocs/bedff683e54e71049d3effd8715749f8615d8d38
├── [7.6K]  exp.c
└── [ 551]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!