CVE-2022-29582

This repository contains exploit code for CVE-2022-29582, a Local Privilege Escalation in io_uring (of the Linux kernel).

Default configurations are affected and no special privileges should be needed.

You can find the writeup at https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/

Building

Running

make

should result in a shiny new executable - or just use the pre-commited one :)

Testing

First, check the writeup for the (micro)arch specs. Then run the given kernel: vmlinuz-5.10.90. The exploit (particularly now the ROP chain) should work fine with the kCTF setup.

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
bin		bin
liburing		liburing
Makefile		Makefile
README.md		README.md
affinity.h		affinity.h
cross_cache.c		cross_cache.c
cross_cache.h		cross_cache.h
err_state.h		err_state.h
main.c		main.c
manager.c		manager.c
manager.h		manager.h
msg.c		msg.c
msg.h		msg.h
ring_helpers.h		ring_helpers.h
rop.h		rop.h
tls.c		tls.c
tls.h		tls.h
vmlinuz-5.10.90		vmlinuz-5.10.90

Ruia-ruia/CVE-2022-29582-Exploit

Folders and files

Latest commit

History

Repository files navigation

CVE-2022-29582

Building

Testing

About

Resources

Stars

Watchers

Forks

Languages