Linux: Use-After-Free exploitation

linux-security-module.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

* Linux: Use-After-Free exploitation
@ 2022-06-22  6:08 Muni Sekhar
  2022-06-22 23:06 ` Kees Cook
  0 siblings, 1 reply; 2+ messages in thread
From: Muni Sekhar @ 2022-06-22  6:08 UTC (permalink / raw)
  To: linux-hardening, linux-security-module; +Cc: LKML

Hi All,

Use-After-Free bugs result in kernel crashes. If these bugs result in
kernel crashes then how is it possible to exploit this vulnerability
for local privilege escalation?

-- 
Thanks,
Sekhar

^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: Linux: Use-After-Free exploitation
  2022-06-22  6:08 Linux: Use-After-Free exploitation Muni Sekhar
@ 2022-06-22 23:06 ` Kees Cook
  0 siblings, 0 replies; 2+ messages in thread
From: Kees Cook @ 2022-06-22 23:06 UTC (permalink / raw)
  To: Muni Sekhar; +Cc: linux-hardening, linux-security-module, LKML

On Wed, Jun 22, 2022 at 11:38:39AM +0530, Muni Sekhar wrote:
> Use-After-Free bugs result in kernel crashes. If these bugs result in
> kernel crashes then how is it possible to exploit this vulnerability
> for local privilege escalation?

There are many examples of manipulating memory layout in a way that an
attacker can control. For example, see:
https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html

-- 
Kees Cook

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2022-06-22 23:06 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2022-06-22  6:08 Linux: Use-After-Free exploitation Muni Sekhar
2022-06-22 23:06 ` Kees Cook

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).