XFRM_UAF (CVE-2019-15666) exploit (initial entry_)

The-Z-Labs · May 12, 2020 · 65589f8 · 65589f8
1 parent 0028b4a
commit 65589f8
Showing 1 changed file with 12 additions and 0 deletions.
diff --git a/linux-exploit-suggester.sh b/linux-exploit-suggester.sh
@@ -856,6 +856,18 @@ author: Jann Horn (orginal exploit author); bcoles (author of exploit update at
 EOF
 )
 
+EXPLOITS[((n++))]=$(cat <<EOF
+Name: ${txtgrn}[CVE-2019-15666]${txtrst} XFRM_UAF
+Reqs: pkg=linux-kernel,ver>=3,ver<5.0.19,CONFIG_USER_NS=y,sysctl:kernel.unprivileged_userns_clone==1,CONFIG_XFRM=y
+Tags:
+Rank: 1
+analysis-url: https://duasynt.com/blog/ubuntu-centos-redhat-privesc
+bin-url: https://github.com/duasynt/xfrm_poc/raw/master/lucky0
+Comments: CONFIG_USER_NS needs to be enabled; CONFIG_XFRM needs to be enabled
+author: Vitaly 'vnik' Nikolenko
+EOF
+)
+
 ############ USERSPACE EXPLOITS ###########################
 n=0