Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit (SHA2017)
Chaos Computer Club - SHA2017: Still Hacking Anyway (mp3) · Alexander Popov
August 6, 201754m 26s
Audio is streamed directly from the publisher (cdn.media.ccc.de) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
CVE-2017-2636 is a 7-year old race condition in the Linux kernel that was fixed by Alexander Popov in March, 2017. This vulnerability affected all major Linux distributions. It can be exploited to gain a local privilege escalation. In this presentation Alexander will describe the PoC exploit for CVE-2017-2636. He will explain the effective method of hitting the race condition and show the following exploitation techniques: turning double-free into use-after-free, heap spraying and stabilization, SMEP bypass.
#DeviceSecurity
about this event: https://c3voc.de
Topics
SHA2017295