Chocobo Root (CVE-2016-8655) Analysis
This is the newest Linux privesc, released 2016-12-06 [here http://seclists.org/oss-sec/2016/q4/607].
References found at this point: http://www.theregister.co.uk/2016/12/07/android_dirty_cow_kernel_patch/ https://www.exploit-db.com/exploits/40871/
Goal: Create a CPI white-paper/blog with:
- deeper analysis of the exploit. Currently
- instructions for setting up an Ubuntu VM to debug the kernel, using symbols and QEMU
- script/procedure for adding offsets for other kernel versions