Skip to content

lntrx/CVE-2021-28663

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits

ss

ss

 
 

README.md

README.md

 
 

compile.sh

compile.sh

 
 

mali.h

mali.h

 
 

mali_poc.c

mali_poc.c

 
 

mali_poc_64

mali_poc_64

 
 

Repository files navigation

CVE-2021-28663

A basic PoC leak for CVE-2021-28663 (Internal of the Android kernel backdoor vulnerability)

This is a basic PoC for CVE-2021-28663. A design flaw in Mali GPU Android Kernel Driver.

  1. Create a GPU_VA and also mmap to it so we can get virtual addr for phys pages.
  2. Create an alias for phy pages, but don't do mmap so gpu_mapping remains as 1
  3. Change flags of GPU_VA to BASE_MEM_DONT_NEED. Mali will make them evictable
  4. Since we have reg for aliased page, now we can mmap to it. This will give us RDONLY access from CPU

Example run:

Example run CVE-2021-28663

Example run CVE-2021-28663

Example run CVE-2021-28663

About

A basic PoC leak for CVE-2021-28663 (Internal of the Android kernel backdoor vulnerability)

Resources

Readme
Activity

Stars

113 stars

Watchers

3 watching

Forks

26 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages